Apple’s Security BlunderAdded: Tuesday, May 15th, 2012
Category: Bit Torrent Freedom > The Industries Of Records, Gaming, Software, Movies
Tags:ET, p2p, Torrent, Piracy, Peer To Peer, Network, Hackers, Internet, BitTorrent, Google, utorrent, bitcomet, extratorrent, 2010, www.extrattorrent.com
Once again, Apple’s faith based security has taken a hit last weekend: it turned out that one of its genius programmers has left a debug flag in the latest version of the Mac OS X. So, if you now want to apply OS X Lion update 10.7.3, this process will turn on a system-wide debug log file which contains the login passwords of all users who have logged in since the update in question was applied. Worse still, all the passwords are stored in clear text, thus being easily reachable for future hackings.
This causes a huge problem for users who used FileVault encryption on their Mac before Lion, then upgraded to Lion and kept the folders encrypted using the legacy version of FileVault. The flaw in question was discovered by security expert David Emery, who published his findings to the Cryptome mailing list. However, Apple didn’t even bother to correct the flaw in subsequent updates. It seems that the company is adopting its traditional method of addressing security problems.
David Emery said that the situation is actually worse than it seems. The matter is that this log can be read by simply booting the PC into firewire disk mode and reading it by opening the drive as a disk or by booting the new-with-LION recovery partition and using the available superuser shell in order to mount the main file system partition and read the file.
In other words, now anyone is able to break into encrypted partitions on the computers even if they didn’t have any idea of any login passwords, which makes the entire encryption idea redundant.
In case the businesses were silly enough to trust the FileVault feature, they could have simply handed over all their business data to the hackers. However, a number of companies outside the entertainment industry have also based their networks on Apple’s security systems.
May 15th,2012Posted by:
Tuesday, May 15th, 2012
|posted by (2012-05-15 18:14:26)|
|I repeat..inferior sh!t software and hardware...Sucks balls.|
|posted by (2012-05-15 20:03:51)|
|Apple use out dated tech in their mac systems and are vastly over priced for the out dated tech. Everything they have released lately has had problems.|
Why waste your money for a name.
|Hey, wasn't it a bright red apple that got Snow White?? Enjoying compatibility (and not suffering from an identity crisis or insecurity/inferiority issues) I have never owned one of their products and never will!|
|posted by (2012-05-15 22:45:39)|
|They made another blunder?!? DAMN, first the ipod, then the ipad and now this?|
|posted by (2012-05-16 00:39:32)|
|@W4nk3r_ nice one m8 got that right !|
|posted by (2012-05-16 01:57:11)|
|ffs why are people so stupid USE UBUNTU!!!!!|
|Ubuntu sucks. Try PC-BSD (Unix with Windows-like functionality --the good parts, anyway) lol|
|lmfao , nice apple never seizes to amaze me xD|
|Umm..version 10.7.4 came out before this article was posted, and it fixed this problem with the log file and everything.|
|posted by (2012-05-16 22:11:35)|
|9. So true bro.|
|Funny how the Apple fanboys seem to disappear when an article like this appears. They just troll articles that have google or windows or android in the title and get a hard on defending Apple||
Most Popular Stories